• Home
  • About Us
  • Contact Us
  • Disclaimer
  • Privacy Policy
  • Terms & Conditions
HOT
Buzzy Flow
No Result
View All Result
  • Home
  • Animals
    PETA statement re passing of Dame Vivienne Westwood

    Video: Participants Get Inked in the Ear to Honor Dogs Killed for Experiments

    Time, Space, Choices, and an Online Chat about Purr

    Time, Space, Choices, and an Online Chat about Purr

    Western conservationists blast ‘extinction bills’ for wolves, grizzlies

    Western conservationists blast ‘extinction bills’ for wolves, grizzlies

    Shift the Farm Bill – Farm Sanctuary

    Shift the Farm Bill – Farm Sanctuary

    Gratitude for elephant skin – Oh My Dog!

    Gratitude for elephant skin – Oh My Dog!

    Feline asthma isn’t keeping Leo from loving life

    Feline asthma isn’t keeping Leo from loving life

    Andean Bear Cub Brothers Now on View Outdoors at the Smithsonian’s National Zoo

    Andean Bear Cub Brothers Now on View Outdoors at the Smithsonian’s National Zoo

    Tardigrade Proteins Can Keep Medicine Stable Without Refrigeration [Study]

    Tardigrade Proteins Can Keep Medicine Stable Without Refrigeration [Study]

    PETA statement re passing of Dame Vivienne Westwood

    Statement: Following Horse Death on Set, PETA Wants ‘The Rings of Power’ Producers to Stop Lording Over Animals

  • Buzz
    The Onion Is Going Nuclear Against J.K. Rowling And Anti-Trans Rhetoric

    The Onion Is Going Nuclear Against J.K. Rowling And Anti-Trans Rhetoric

    Ukraine’s Nuclear Reactors Are Now War Zones

    Ukraine’s Nuclear Reactors Are Now War Zones

    AI Chose My Makeup For A Week And The Results Were Actually Pretty Great

    AI Chose My Makeup For A Week And The Results Were Actually Pretty Great

    Long Walks May Help You Live Longer, Even If You Only Do Them Once Or Twice A Week

    Long Walks May Help You Live Longer, Even If You Only Do Them Once Or Twice A Week

    Twice’s Chaeyoung Apologized For QAnon And Swastika T-Shirts

    Twice’s Chaeyoung Apologized For QAnon And Swastika T-Shirts

    Ukraine Families Say Goodbye As Men Stay To Fight: Photos

    Ukraine Families Say Goodbye As Men Stay To Fight: Photos

    Drew Barrymore Opens Up About Perimenopause

    Drew Barrymore Opens Up About Perimenopause

    16 Recipes That Are Better As Leftovers

    16 Recipes That Are Better As Leftovers

    NY AG Calls For Weather Alerts In More Languages

    NY AG Calls For Weather Alerts In More Languages

  • Celebs
    Ali Fedotowsky Says Jake Gyllenhaal Made Her Cry

    Ali Fedotowsky Says Jake Gyllenhaal Made Her Cry

    TikTok Star Brooklyn Queen Has Stalker Claiming To Be Her Mom

    TikTok Star Brooklyn Queen Has Stalker Claiming To Be Her Mom

    Ulta 24-Hour Flash Sale: 50% Off Clinique, Urban Decay, and More

    Ulta 24-Hour Flash Sale: 50% Off Clinique, Urban Decay, and More

    Has Reese Witherspoon Been Quietly Untangling Finances From Jim Toth For YEARS?!

    Has Reese Witherspoon Been Quietly Untangling Finances From Jim Toth For YEARS?!

    Elon Musk Is Doubling Down on Getting Everyone to Pay for Twitter

    Elon Musk Is Doubling Down on Getting Everyone to Pay for Twitter

    Harry Styles’ dating history: Everything we know about his past and new relationships | Explainer

    Jonathan Majors, Marvel and ‘Creed III’ actor, arrested on assault charge in New York – National

    Jonathan Majors, Marvel and ‘Creed III’ actor, arrested on assault charge in New York – National

    2023 iHeartRadio Music Awards Winners

    2023 iHeartRadio Music Awards Winners

    Former National Enquirer Publisher Testifies In Trump Grand Jury – Deadline

    Former National Enquirer Publisher Testifies In Trump Grand Jury – Deadline

  • Life
    Ali Fedotowsky Says Jake Gyllenhaal Made Her Cry

    Ali Fedotowsky Says Jake Gyllenhaal Made Her Cry

    TikTok Star Brooklyn Queen Has Stalker Claiming To Be Her Mom

    TikTok Star Brooklyn Queen Has Stalker Claiming To Be Her Mom

    Ulta 24-Hour Flash Sale: 50% Off Clinique, Urban Decay, and More

    Ulta 24-Hour Flash Sale: 50% Off Clinique, Urban Decay, and More

    Has Reese Witherspoon Been Quietly Untangling Finances From Jim Toth For YEARS?!

    Has Reese Witherspoon Been Quietly Untangling Finances From Jim Toth For YEARS?!

    Elon Musk Is Doubling Down on Getting Everyone to Pay for Twitter

    Elon Musk Is Doubling Down on Getting Everyone to Pay for Twitter

    Harry Styles’ dating history: Everything we know about his past and new relationships | Explainer

    Jonathan Majors, Marvel and ‘Creed III’ actor, arrested on assault charge in New York – National

    Jonathan Majors, Marvel and ‘Creed III’ actor, arrested on assault charge in New York – National

    2023 iHeartRadio Music Awards Winners

    2023 iHeartRadio Music Awards Winners

    Former National Enquirer Publisher Testifies In Trump Grand Jury – Deadline

    Former National Enquirer Publisher Testifies In Trump Grand Jury – Deadline

  • Tech
    NYC Mayor’s New Scheme in Ongoing Rat War: A Composting Mandate

    NYC Mayor’s New Scheme in Ongoing Rat War: A Composting Mandate

    Apple iOS 16 and iPadOS 16 (2023): How to Download, New Features, Supported Devices

    Apple iOS 16 and iPadOS 16 (2023): How to Download, New Features, Supported Devices

    ‘Quordle’ today: See each ‘Quordle’ answer and hints for March 29

    ‘Quordle’ today: See each ‘Quordle’ answer and hints for March 29

    Spotify’s Niche Mixes are weirdly specific personalized playlists

    Spotify’s Niche Mixes are weirdly specific personalized playlists

    How I Met Your Father finale tries to redeem Barney Stinson

    How I Met Your Father finale tries to redeem Barney Stinson

    The Best Documentaries on Netflix in 2023

    The Best Documentaries on Netflix in 2023

    The Inner Beauty of Basic Electronics

    Rerouting Intention And Sensation In Paralyzed Patients

    Can a Machine Know That We Know What It Knows?

    Can a Machine Know That We Know What It Knows?

    No company ever cost-cut its way to greatness

    No company ever cost-cut its way to greatness

  • Video
    • All
    • Cooking
    • Fitness
    • Gaming
    • Lifestyle
    • Music
    • Podcasts
    • Travel
    • Vlogs
    #shorts|#youtubeshorts|#ytshorts| # کسی کے عیب کا پردہ رکھنا|💖🕋❤️|@forever happy life.

    #shorts|#youtubeshorts|#ytshorts| # کسی کے عیب کا پردہ رکھنا|💖🕋❤️|@forever happy life.

    &TEAM(アンドチーム) ~ BUZZ LOVE (バズ恋) ~ Line Distribution

    &TEAM(アンドチーム) ~ BUZZ LOVE (バズ恋) ~ Line Distribution

    Sugar cane growing technology(China)

    Sugar cane growing technology(China)

    Sweet Happy Life (Samba De Orfeu)

    Sweet Happy Life (Samba De Orfeu)

    If someone Ignore you, Do this.. | #quotes #lifequotes

    If someone Ignore you, Do this.. | #quotes #lifequotes

    Cute Animals Video Cow, Yak, Rhino, Cat || Learn Animals Name || Animals Video || #cow cow video ||

    Cute Animals Video Cow, Yak, Rhino, Cat || Learn Animals Name || Animals Video || #cow cow video ||

    Happy Animals on Modelo Farm #farmlife #homestead #ranch

    Happy Animals on Modelo Farm #farmlife #homestead #ranch

    Volkswagen ID Buzz tiene precios oficiales!

    Volkswagen ID Buzz tiene precios oficiales!

    The Secret To A Happy Life

    The Secret To A Happy Life

Buzzy Flow
No Result
View All Result
Advertisement Banner
Home Tech

Zero trust is too trusting: Why ZTNA 2.0 won’t be

buzzyflow by buzzyflow
November 15, 2022
in Tech
0 0
0
Zero trust is too trusting: Why ZTNA 2.0 won’t be
0
SHARES
0
VIEWS
Share on FacebookShare on Twitter


This article is part of a VB special issue. Read the full series here: Zero trust: The new security paradigm.

While the concept of zero trust can be dated as far back as 2009, when Forrester analyst John Kindervag popularized the term and eliminated the concept of implicit trust. It wasn’t until the COVID-19 pandemic that adoption began to pick up steam. 

Okta research finds that the percentage of companies with a defined zero-trust initiative more than doubled from 24% in 2021 to 55% in 2022, coinciding with the increase in remote and hybrid working environments during the pandemic. But what is zero trust, exactly? 

According to Kindervag in a blog post, zero trust “is framed around the principle that no network user, packet, interface, or device — whether internal or external to the network — should be trusted.” Under this approach, “every user, packet, network interface, and device is granted the same default trust level: zero.” 

Zero trust effectively means that all users have to authenticate before they can access enterprise apps, services, resources or data. It’s a concept designed to prevent unauthorized threat actors and malicious insiders from exploiting implicit trust to gain access to sensitive information. 

However, there are some who believe that the concept of zero trust is incomplete and requires a new iteration in the form of zero-trust network access 2.0 (ZTNA 2.0).

Defining ZTNA 2.0 

In a nutshell, ZTNA 2.0 is an approach to zero trust that applies least privileged access at the application layer without relying on IP addresses and port numbers, and implements continuous trust verification, monitoring user and app behavior, to ensure the connection isn’t compromised over time.

“ZTNA 1.0 uses an ‘allow and ignore’ model. What we mean by that is, once access to an application is granted, there is no further monitoring of changes in user, application or device behavior,” said SVP of product and GTM at Palo Alto Networks, Kumar Ramachandran.

Under ZTNA 1.0, once a user connects to an app once, the solution assumes implicit trust from that point onward. 

In effect, the lack of additional security inspection and user behavior monitoring means these solutions can’t detect compromise, leaving them vulnerable to credential theft and data exfiltration attacks. For Ramachandran, this is a critical oversight that ruins the underlying integrity of least-privileged access. 

“This might sound shocking, but the ZTNA 1.0 solutions implemented by vendors actually violate the principle of least privileged access, which is a fundamental tenet of zero trust. ZTNA 1.0 solutions rely on outdated contracts to identify applications, like IP addresses and port numbers,” Ramachandran said. 

On the other hand, ZTNA 2.0 continuously authorizes and monitors user access based on contextual signals, giving it the ability to withdraw access from users in real time if they start behaving maliciously. 

Is this a legitimate iteration of zero trust or a buzzword? 

Outside of Palo Alto Networks’ perspective, analysts are divided on whether ZTNA 2.0 stands on its own as an iteration of zero trust, or whether it’s a buzzword.  

“Zero Trust 2.0 is nothing but marketing, really driven from one vendor. It’s not really an evolution of the technology. This means that there really isn’t a fundamental difference; zero trust is and has been about reducing access to what is required to do a job and no more, and to enforce this based on identity and context,” said Charlie Winckless, senior analyst at Gartner. 

“Much of the language around ZTNA 2.0 is simply catching up to innovators in the space and what their products already offered. Not all the capabilities will be needed by all clients, and selecting a vendor is more than about a fake marketing term. It’s the 2.0 release for the vendor, not of the technology.” Winckless said. 

However, there are others who believe that ZTNA 2.0 does make some limited tweaks to traditional zero trust. 

“ZTNA 2.0 was coined in 2020 by a vendor in response to the NIST 800-207 publication. The only real differences are the addition of continuous monitoring and step-up authentication via privilege assessment, based on the resource being accessed, some form of DLP [data-loss prevention] capabilities, and additional CASB [cloud access security broker] coverage,” said Heath Mullins, senior Forrester analyst.

So why does ZTNA 2.0 matter? 

Fundamentally, ZTNA 2.0 doesn’t challenge the underlying assumptions of zero trust, but seeks to reevaluate the approaches that ZTNA 1.0 solutions take to applying access controls, which are open to compromise. 

“In more modern ZTNA 2.0 technologies, authorization not only occurs upon the initiation of a session, but continuously and dynamically throughout a connected session,” said Andrew Rafla, principal at Deloitte and Touche LLP, and member of the cyber and strategic risk practice of Deloitte Risk and Financial Advisory. 

“This feature helps alleviate the risk of compromised credentials and session hijacking attacks,” Rafla said. 

Given that stolen credentials contribute to almost 50% of data breaches, organizations can’t afford to assume that user accounts are unlikely to be compromised.  

Thus, when looking at building a zero-trust strategy, ZTNA 2.0 solutions have a role to play in helping apply more effective controls at the application level that are responsive to account takeover attempts. 

That being said, zero trust remains an iterative approach to securing user access, and implementing a ZTNA 2.0 solution can’t make an organization implement zero-trust access controls “out-of-the-box.” 

Moving forward on the zero-trust journey 

Whether an organization decides to use ZTNA 1.0 or ZTNA 2.0 solutions to enable its zero-trust journey, the end goal is the same: Eliminating implicit trust, implementing the principle of least privilege and preventing unauthorized access to critical data assets. 

It’s important to emphasize that, while ZTNA 2.0 provides a useful component in the zero-trust journey for applying the principle of least privilege more effectively at the application level and making security teams more responsive to compromise, it’s not a shortcut to implementing zero trust. 

The only way to fully implement zero trust is to create an inventory of resources and data throughout the enterprise environment and systematically implement access controls to ensure that unauthorized access is prevented.

VentureBeat’s mission is to be a digital town square for technical decision-makers to gain knowledge about transformative enterprise technology and transact. Discover our Briefings.



Source_link

Advertisement Banner
buzzyflow

buzzyflow

Trending Posts

NYC Mayor’s New Scheme in Ongoing Rat War: A Composting Mandate
Tech

NYC Mayor’s New Scheme in Ongoing Rat War: A Composting Mandate

by buzzyflow
March 29, 2023
0

The rats don’t run this city—garbage rules do. New York City Mayor (and crypto enthusiast) Eric Adams proposed a new...

Read more
50 Jobs That AI Will Replace In The Next 5 Years

50 Jobs That AI Will Replace In The Next 5 Years

January 2, 2023
FREDJI – Happy Life

FREDJI – Happy Life

October 1, 2022
Logan Paul Was Hit With A Suit Over His CryptoZoo Project

Logan Paul Was Hit With A Suit Over His CryptoZoo Project

February 5, 2023
Bird Songs HD – 3 HOURS of bird songs in the forest – Relaxation and Meditation

Bird Songs HD – 3 HOURS of bird songs in the forest – Relaxation and Meditation

December 4, 2022
Milow Ayo Technology lyrics

Milow Ayo Technology lyrics

December 16, 2022

Buzzy Flow

Welcome to Buzzy Flow The goal of Buzzy Flow is to give you the absolute best news sources for any topic! Our topics are carefully curated and constantly updated as we know the web moves fast so we try to as well.

Follow Us

Categories

  • Animals
  • Buzz
  • Celebs
  • Cooking
  • Fitness
  • Gaming
  • Life
  • Lifestyle
  • Music
  • Podcasts
  • Tech
  • Travel
  • Video
  • Vlogs

Recent Post

  • Ali Fedotowsky Says Jake Gyllenhaal Made Her Cry
  • #shorts|#youtubeshorts|#ytshorts| # کسی کے عیب کا پردہ رکھنا|💖🕋❤️|@forever happy life.
  • Video: Participants Get Inked in the Ear to Honor Dogs Killed for Experiments
  • The Onion Is Going Nuclear Against J.K. Rowling And Anti-Trans Rhetoric
  • Home
  • About Us
  • Contact Us
  • Disclaimer
  • Privacy Policy
  • Terms & Conditions

Copyright © 2022 Buzzyflow.com | All Rights Reserved.

No Result
View All Result
  • Home
  • Animals
  • Buzz
  • Celebs
  • Life
  • Tech
  • Video

Copyright © 2022 Buzzyflow.com | All Rights Reserved.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
What Are Cookies
We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept All”, you consent to the use of ALL the cookies. However, you may visit "Cookie Settings" to provide a controlled consent.
Cookie SettingsAccept All
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checkbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT